Home
> Commands A-M
> Commands Ca-Cg
CERTREQ RETRIEVE
Description
| Syntax
| Parameters
| Switches
| Related
| Notes
| Examples
| Errorlevels
| Availability
To retrieve a response to a previous request from a
certification authority (CA).
Syntax
CERTREQ
-retrieve
[/?]
CERTREQ
-retrieve
[-binary]
[-config machine\user]
[-crl]
[-rpc]
request_id
[output_file
[chain_output_file
[response_output_file]]]
Parameters
- chain_output_file
(NT2003)
- Specifies the binary or base64-encoded PKCS #7
file to which you want to send output.
- output_file
(NT2003)
- Specifies the binary or base64-encoded X.509 v3
file to which you want to send output.
- request_id
(NT2003)
- Specifies the request or certificate that you want
to retrieve.
- response_output_file
(NT2003)
- Specifies the binary or base64-encoded Full
Response file to which you want to send output.
Switches
- /?
(NT2003)
- Display cluster group syntax. Default.
- -binary
(NT2003)
- Formats output files as binary instead of
base64-encoded.
- -config machine\user
(NT2003)
- Processes the operation by using the certification
authority specified in machine\name. Otherwise, default
CA processes the request
- You must specify the machine or user. Otherwise,
the Select Certificate Authority dialog box appears and
displays a list of all CAs that are available.
- If you use "-config -", the operation is processed
using the default CA.
- -crl
(NT2003)
- Includes certificate revocation lists (CRLs) in
the output to the base64-encoded PKCS #7 file
specified by
chain_output_file
or to the base64-encoded file specified by
response_output_file.
- -rpc
(NT2003)
- Instructs Certificate Services to use a remote
procedure call (RPC) server connection instead of
Distributed COM.
- -retrieve
(NT2003)
- Retrieves a response to a previous request from a
certificate authority.
Related
CERTREQ ACCEPT
CERTREQ NEW
CERTREQ POLICY
CERTREQ SIGN
CERTREQ SUBMIT
Notes
You can use CERTREQ -retrieve
request_id to retrieve the
certificate after the CA has actually issued it. You can also
use it to retrieve any certificate that has ever been issued by
the CA, including revoked or expired certificates, without regard
to whether the certificate's request was ever in the pending
state.
If you submit a request to the CA, the policy module of the
CA might leave the request in a pending state and return the
request_id to the CERTREQ
caller for display. Eventually, the CA's administrator will
issue the certificate or deny the request.
Examples
none.
Errorlevels
none.
Availability
- External
-
- DOS
-
none
- Windows
-
none
- Windows NT
-
NT2003
Last Updated: 2003/07/28
Direct corrections or suggestions to:
Rick Lively